PLANAR FUNCTIONS OVER FIELDS OF 
CHARACTERISTIC TWO 



KAI-UWE SCHMIDT AND YUE ZHOU 

Abstract. Classical planar functions are functions from a finite field 
to itself and give rise to finite projective planes. They exist however only 
for fields of odd characteristic. We study their natural counterparts in 
characteristic two, which we also call planar functions. They again give 
rise to finite projective planes, as recently shown by the second author. 
We give a characterisation of planar functions in characteristic two in 
terms of codes over TLa- We then specialise to planar monomial functions 
f(x) = cx f and present constructions and partial results towards their 
classification. In particular, we show that t = 1 is the only odd exponent 
for which fix) = cx t is planar (for some nonzero c) over infinitely many 
fields. The proof techniques involve methods from algebraic geometry. 



1. Introduction 
A function / : ¥ q — > ¥ q is planar if 
(1) x^ f(x + e)-f(x) 

is a permutation of ¥ q for each e £ F*. Planar functions have been introduced 
by Dembowski and Ostrom [4J to construct finite projective planes and arise 
in many other contexts. For example, Ganley and Spence [8] showed that 
planar functions give rise to certain relative difference sets, Nyberg and 
Knudsen |21j . among others, studied planar functions (under the synonym 
perfect nonlinear functions) for applications in cryptography, and Car let, 
Ding, and Yuan [3], among others, used planar functions to construct error- 
correcting codes. 

Planar functions cannot exist in characteristic two since, if q is even and 
x is a solution to f(x + e) — f(x) = a for a S ¥ q , then so is x + e. This is the 
motivation to define a function / : ¥ q — > ¥ q to be almost perfect nonlinear 
if (pQ) is a 2-to-l map. Such functions have also been studied extensively 
for applications in cryptography and coding theory (see Carlet, Charpin, 
and Zinoviev [2], for example). However, there is no apparent link between 
almost perfect nonlinear functions and finite projective planes. 
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Recently, the second author proposed [23J a concept to overcome the 
problem that there is no planar function in characteristic two. The definition 
of a planar function has to be modified as follows. A function / : F2™ —> ¥2" 
is planar if 

(2) x i-> f(x + e) + f(x) + ex 

is a permutation of F2™ for each e G F^n. Such functions share many of 
the properties of planar functions in odd characteristic. The next section, 
which is independent of the rest of this paper, provides further background 
on planar functions in characteristic two and discusses connections to finite 
geometries and coding theory. 

Recall that every function from ¥2" to itself can be uniquely written as 
a polynomial function of degree at most 2 n — 2. We consider the simplest 
nontrivial polynomial functions, namely monomial functions x 1— > cx l for 
some c G Fgn and some integer t. Such functions are often preferred in 
applications. We are interested in those exponents t satisfying 1 < t < 2 n — 2 
for which the function x 1— > cx l is planar on ¥2™ for some c G ¥\ n . 

It is readily verified that x 1— > cx 2k is planar on ¥2^ for all c G FJin. We 
conjecture that the only exponents that give planar monomials are these 
trivial examples and two further examples, shown in Table [TJ 

Table 1. Conjectured complete list of exponents giving pla- 
nar monomials on ¥2*. 



Exponent t 


Condition 


Reference 


2 k 


none 


trivial 


2 k + 1 


n = 2k 


Theorem [6] 


2 k (2 k + 1) 


n = 6k 


Conjecture [7] 



As in odd characteristic, the complete classification of planar monomials 
in characteristic two seems to be a challenging problem. This motivates us 
to study the relaxed problem of classifying monomial functions x t-t cx* on 
¥2^ that are planar for at least one c £ ¥^n and infinitely many n. The only 
known such exponents t are the trivial cases t = 2 k and we conjecture that 
there are no more. Our main result is the following. 

Theorem 1. Let t be an odd positive integer. If the function x 1— > cx l is 
planar on ¥2™ for some c G FJjn and infinitely many n, then t = 1. 

The problem of classifying monomial functions x 1— > cx* on ¥2^ that are 
planar for at least one c G ¥^n and infinitely many n parallels the problem of 
classifying monomial functions x 1— >■ x t on ¥2^ that are almost perfect non- 
linear for infinitely many n. To attack this problem, Janwa, McGuire, and 
Wilson [13] proposed to use ideas from algebraic geometry. These ideas were 
further developed by Jedlicka [14] and Hernando and McGuire [10], leading 
to a complete solution. The same approach has been used by Hernando and 
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McGuire [111 to prove a conjecture on monomial hyperovals in projective 
planes and by Leducq [17] and Hernando, McGuire, and Monserrat [12] to 
give partial results towards a classification of planar monomial functions in 
odd characteristic (which was recently completed by Zieve [24] ). We shall 
use a similar approach to prove Theorem [H though our proof requires several 
extra ideas. 

2. Background and Motivation 

2.1. Relative difference sets and finite geometries. Let G be a finite 
group and let N be a subgroup of G. A subset D of G is a relative difference 
set with parameters (|G|/|iV|, \N\, \D\,X) and forbidden subgroup N if the 
list of nonzero differences of D comprises every element in G \ N exactly 
A times. We are interested in relative difference sets D with parameters 
(q, q, q, 1) and a normal forbidden subgroup, in which classical result 

due to Ganley and Spence [8j Theorem 3.1] shows that D can be uniquely 
extended to a finite projective plane. 

It is known [7J, [16] that, for even q, a relative difference set with parame- 
ters (q, q, q, 1) in an abelian group necessarily satisfies q = 2 n for some inte- 
ger n and is a subset of Z^ (where Z4 = Z/4Z) and the forbidden subgroup 
is 2Z4 . This fact was the motivation for the second author to study [23] such 
relative difference sets, which then led to the notation of planar functions 
over fields of characteristic two. 

We shall follow an approach that is slightly different from that in [23J and 
identify Z4 with the additive group of the Galois ring R n of characteristic 
4 and cardinality 4 n . We recall some basic facts about such Galois rings 
(see [20] or [15], for example). The unit group R n \ 2R n of R n contains a 
cyclic subgroup T{R n f of size 2 n - 1 and T(R n ) = T(R n )* U {0} is called 
the Teichmuller set in R n . We define addition on T{R n ) by 

(3) x © y = x + y + 2^/xy 

(where + is addition in R n ). Then (T(R n ),(B, • ) is a finite field with 2 n 
elements [20, Statement 2]. Every y G R n can be written uniquely in the 
form y = a + 2b for a, b G F(R n ). 

It is now an easy exercise to show that a relative difference set in R n with 
parameters (2 n , 2 n ,2 n , 1) can always be written as 

(4) D = {x + 2y7M : x G T(Rn)}, 

where / is some function from T(R n ) to itself. The following result charac- 
terises the functions / for which @) is a relative difference set. 

Theorem 2. The set D, given in ([!]), is a relative difference set with param- 
eters (2 n ,2 n ,2 n ,l) and forbidden subgroup 2R n if and only if f is planar. 

Proof. By definition, D is a relative difference set with parameters (2 n , 2 n , 2 n , 1) 
and forbidden subgroup 2R n if and only if, for every c G R\2R, the equation 

(x + 2^fj(x)) - (y + 2 v / /(^)) = c 
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has exactly one solution (x,y) £ T(R n ) x T(R n ). Equivalently, writing 
c = a + 2b for a E T(R n )* and b £ T(R n ), the two equations 

x © y = a 

//M© vTivj® V^y®y = b 

hold simultaneously for exactly one pair (x,y) S T(R n ) x r(i?„). This in 
turn holds if and only if the mapping 

x (->■ /(x © a) © /(x) © ax 

is a permutation of T(R n ) for every a^O. □ 

Remark. Theorem[2]is essentially equivalent to |23|, Thm. 2.1], which avoids 
using Galois rings at the cost of a more delicate proof. 

Let x '■ Rn -> C be a character of the additive group of R n . For later 
reference, we recall the following standard result (see [22] Ch. 1], for exam- 
ple) : D is a relative difference set in R n with forbidden subgroup 2R n if and 
only if 







2 


4™ 


for x principal 


(5) 




= < 





for x n °t principal, but principal on 2R n 




xeD 




2™ 


otherwise. 



2.2. Coding theory. We assume that the reader is familiar with the basic 
terminology of coding theory, in particular of the theory of codes over Z4. 
Otherwise, we advise to consult the seminal paper |15j . 

Let / be a function from F2" to itself satisfying /(0) = and let a be a 
generator of F|n • It is well known (see [2J Theorem 5] , for example) that for 
n > 4 the code over F2 having parity check matrix 

,„s 1 a or • • • z 

(6) /(a) /(a 2 ) ••• /(a 2 "- 2 ). 

has minimum (Hamming) distance 3, 4, or 5, where the value 5 occurs 
if and only if / is almost perfect nonlinear. We shall provide a similar 
characterisation for planar functions in characteristic two. 

Let / be a function from T(R n ) to itself and let f3 be a generator of 
T(R n )*. Consider the code Cf over Z4 having parity check matrix 

11 1 1 

2/7(0) l + 2v7(T) /3 + 2^m ■■■ /3 2 "- 2 + 2V/(/3 2 "- 2 ). ' 

This code and its dual are free ^-modules of rank 4 2 ' 1 -™- 1 anc [ 4 n+1 , re- 
spectively. 

We remind the reader that the Lee weights of 0, 1, 2, 3 G Z4 are 0, 1, 2, 1, 
respectively, and the Lee weight wtL{c) of c G (2^)^ is the sum of the Lee 
weights of its components. This weight function defines a metric in ^4)^, 
called the Lee distance. 
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Table 2. Weight distribution of (Cf) 1 - for odd n. 



weight 


frequency 





1 


2 n 2 (n—i)/2 


2 n+1 (2 n - 1) 


2 n 


2 n+2 _ 2 


2 n + 2 (n ~" 1 )/ 2 


2™ +1 (2™ - 1) 


2 n+l 


1 



Table 3. Weight distribution of (Cf) for even n. 



weight 


frequency 





1 


2 n _ 2 n/2 


2 n (2 n - 1) 


2 n 


2 n+1 (2 n + l)-2 


2 n + 2 n/2 


2 n (2 n - 1) 


2 n+l 


1 



Write C for the code Cf when / is identically zero (in which case / is 
planar). The dual code C 1 - is the Z4-Kerdock code described in [15]. Let 

: (Z 4 ) N (¥ 2 ) 2N 

be the Gray map, which defines an isometry between (Z 4 ) N , equipped with 
the Lee distance, and (¥2)™ , equipped with the Hamming distance. Then, 
for n > 3 odd, (^{C^) is the classical Kerdock code and (j)(C) has the same 
parameters as the Preparata code (see [15] for details on these codes). 

The Lee weight distribution of C 1 - has been determined in [15] , The 
following more general result gives a characterisation of planar functions. 

Theorem 3. The code {Cf) 1 - has the same Lee weight distribution as C 1 - 
if and only if f is planar. In particular, if f is planar, the Lee weight 
distribution of (Cf) 1 - is given in Table\^for odd n and in Table\3\for even n. 



Proof. Let w be a primitive fourth root of unity. If c = (ci, . . . ,cn) is an 
element of (Zj4 : ) n , then its Lee weight satisfies 

JV 

(7) 



wt L (c) = iV — Re (X^ Cl Y 
^ i=i ' 



Let T : R n — > Z4 be the absolute trace function on R n . We shall index 
elements of codewords by T(R n ). For a G R n and b G Z4, consider the 
codeword 



c a , b =(T(a(x + 2 y r n^j))+b) 
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(9) \S a \ 



(X,Y) 



By a folklore generalisation of Delsarte's Theorem [19} p. 208] to codes over 
Z4, these are exactly the 4 n+1 codewords of (Cf) . From ([7]) we have 

(8) wt L (c aib ) = 2 n -Re(u b S a ), 

where 

Sa = w T WW7£))). 
xer(R n ) 

Since z 1— > uj T ^ az ^ are exactly the characters of the additive group of R n , by 
Theorem [2] and ([5]) , the function / is planar if and only if 

'4 n fora = 
for a G 2R n \ {0} 
2 n foraeR n \2R n . 

Now let / be planar. Using ([8]), we easily get the Lee weight distribution of 
the codewords c a ^ when a G 2R n and b G Z4. Next assume that a G R n \2R n 
and write S a = X + ojY for integers X and Y. By Jacobi's two-square 
theorem, the only solutions to the Diophantine equation X 2 + Y 2 = 2 n are 

'(±2(™- 1 )/ 2 ,±2( n - 1 )/ 2 ) for odd n 
J0,±2 n / 2 ) or (±2 n / 2 ,0) for even n. 

Therefore, for odd n, we have 

S a = ±2("" 1 )/ 2 ± 2("" 1 )/ 2 ^. 

Hence, as b ranges over Z4 and a G R n \2R n is fixed, the expression Ke(u; b S a ) 
takes on each of the values ±2( n_1 )/ 2 twice. One can then get the Lee weight 
distribution from ([8]). Likewise, for even n, we have 

S a = ±2 n l 2 or ± 2 n / 2 co. 

Hence, as b ranges over Z4 and a G R n \2R n is fixed, the expression Ke(u; b S a ) 
is zero twice and takes on each of the values ±2 n / 2 once. The Lee weight 
distribution follows from (|8|). 

Now, if / is not planar, then it follows easily from ([8]) and the charac- 
terisation Q of planar functions that the Lee weight distribution of {Cf) 1 ' 
cannot coincide with that of C^~. □ 

For odd n, we have the following alternative characterisations of planar 
functions. 

Theorem 4. For odd n >3, the code Cf has minimum Lee distance 4 or 6, 
where the value 6 occurs if and only if f is planar. 

Proof. Recall that the type of a codeword is defined as the enumerator of 
its nonzero entries. For example a codeword of type 1 2 2 4 equals 1 at two 
positions and equals 2 at four positions. 

Notice that a nonzero codeword in Cf of Lee weight at most 3 implies 
that there exists a codeword in Cf of type 2 1 , 2 2 , or 2 3 . Such codewords 
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however cannot exist in Cf (for the same reason as the minimum distance 
of the extended Hamming code equals 4) . Hence the minimum Lee distance 
of Cf is at least 4. 

If / is planar, the Lee weight distribution of Cf is independent of / by 
Theorem [3] and a Mac Williams-type identity (see |151 § II. B], for example). 
Hence, if / is planar, the minimum Lee distance of Cf equals that of C, which 
is 6 p]. 

We complete the proof by assuming that / is not planar and show that 
Cf then contains a codeword of type 1 2 (— l) 2 , and so has minimum distance 
at most 4. The code Cf contains a codeword of type 1 2 (— l) 2 if and only if 
there exist distinct elements u, v, x, y in T(R n ) satisfying simultaneously the 
following two equations over R n 

u + x = v + y 

u + 2^J(u)+x + 2^W)=v + 2^J^+y + 2^J{y). 

By the definition ([3]) of addition in T(R n ), these equations are equivalent to 
the following two equations over T(R n ) 

u © x = v © y 
ux © f{u) © f(x) = vy@ f(v) © f(y). 

From the first equation we infer that there exists z £ T(R n ) such that 
u = v © z and y = x © z. The second equation then becomes 

f(v) © f(v ®z)e>vz = f(x) © f(x © z) © xz. 

Since / is not planar, this equation has a solution (v,x,z), where v and x 
are distinct and z ^ 0. One then verifies that u, v, x, y are also distinct. □ 

A consequence of Theorem H] is the following. 

Corollary 5. For odd n > 3, the code (f>(Cf) punctured in one (arbitrary) 
coordinate has minimum distance 3, 4, or 5, where the value 5 occurs if and 
only if f is planar. 

Proof. The only part that is not immediate from Theorem [3] is that the code 
cannot have minimum distance 6. But this value cannot occur since the code 
then violates a version of the Johnson bound [9]. □ 

Let Df be the code over F2 with parity check matrix (J6|). If / is almost 
perfect nonlinear and n > 4, then T>f has parameters (2 n — 1, 2 2n_2n_1 , 5). 
In contrast, by Corollary El if / is planar and n > 3 is odd, then <p(Cf) 
punctured in one coordinate has parameters (2 n — 1, 2 2 _2n , 5), and so con- 
tains twice as many codewords as Df. If / is planar, then 4>(Cf) punctured 
in one coordinate meets a version of the Johnson bound, and so is nearly 
perfect [9]. 
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3. Planar monomial functions 

We begin with providing a nontrivial example of planar monomial func- 
tions, in which 

Tr m (x) = x + x 2 + --- + x 2 
denotes the trace function on F 2 m. 

Theorem 6. Let n be an even positive integer and let c S F* n/2 be such that 
Tr n / 2 (c) = 0- Then the function 

2 "/ 2 +l 

x 1 y cx 

is planar on F 2 ™ . 

Proof. We have to show that, for each e 6 F 2n , the mapping 

. ,o«/2 1 1 on/2 11 

x c(x + e)" 1 +i + caf +i + ex 
is a permutation of ¥2" , or equivalently, the linear mapping 

/ \ on/2 on/2 , 

(10) x 1 y x e + xe +ex/c 

is a permutation of ¥2^. This holds if the kernel of the mapping (|10p is 
trivial. Hence, it is enough to show that 

2 n/2_ 1 2™/ 2 -l , 1 / 

x = e + 1/c 

has no solution (x, e) in F|„ x F^n. Let T be the cyclic subgroup of ¥f, n with 
order 2 n / 2 + 1. We show that 

rn(r + i/c) = 0, 

which will prove the theorem. 

Let y be in T. Then y 2 " /2 + 1 = i an d, since c S F* n/2 , 

(11) (y + l/cf n/2+1 = 1 + 1/c 2 + l/(cy) + y/c. 

Now suppose, for a contradiction, that y also belongs to T + 1 /c. Then the 
left hand side of (fTTj) equals 1, and thus 

(12) y 2 + y/c+1=0 _ 

We may set z = yc to transform this quadratic equation into the standard 
form z 2 +z+c 2 = 0, which has two solutions in F 2 „/ 2 if and only if Tr n/ / 2 ( c2 ) 
[191 Ch. 9, Thm. 15]. Since Tr n/2 (c) = and c G F 2 „/ 2 , we find that 
y G F 2 „/ 2 . But y is also in T, so that 

2 n/2 + 1 2 

1 = y = y , 

contradicting (|12h . □ 

We conjecture that there exists another nontrivial example of planar 
monomial functions. 
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Conjecture 7. Let n be a positive integer divisible by 6. Then the function 

x i — y cx y T ' 

is planar on for at least one c G F^n ■ 

We also conjecture that the only exponents that give planar monomials are 
the trivial examples 2 k and those identified in Theorem [6] and Conjecture [7J 

Conjecture 8. Let t be an integer satisfying 1 < t < 2 n — 2. If the function 
x h-> cx 1 is planar on F 2 « for some c G F^n , then t is one of the values given 
in Tabled 

The following partial answer to Conjecture [8] is easy to prove. 

Proposition 9. Let t be a positive integer satisfying gcd(t — 2, 2 n — 1) = 1. 

If the function x 1— > cx* is planar on F%n for some c G F^n, then t is a power 
<>f 2. 

Proof. Suppose that x \-t cx 1 is planar on F2™ for some c G F\ n ■ Then 

x \-¥ c(x + e) + cx* + ex 

is a permutation of F2™ for each e G Fgn. Substituting y = x/e, we see that 

y ^ (y + 1)* + y* + (e 2 ~*/c)y 

is a permutation of F2™ for each e G Fgn. Hence, for each e G Fgn, the 
equation 

(y + 1)* + y* + (z + 1)* + z l = (e 2 -*/c)(y + z) 
has no solution (x, y) in F2« x F2« satisfying y ^ z. Equivalently, writing 

D = < ■ : y, z G F 2 « , y ^ z 

{ y + z 

we have D n {e 2 ~*/c : e G F^n} = 0. But since i - 2 is coprime to 2 n - 1, 
we have {e 2 "*/c : e G F* 2n } = F% n , hence D = {0}. Therefore, (y + 1)* + y* 
is constant for all y G F2", which implies that t is a power of two. □ 

Remark. Proposition [9] corresponds to case (iv) of [TJ Theorem 1.1]. 

We now focus on the relaxed problem of classifying monomial functions 
x i—T- cx* on F 2 « that are planar for at least one c G F 2 n and infinitely many n. 
The only known such exponents t are the trivial cases t = 2 k and we have 
the following weaker form of Conjecture [8l 

Conjecture 10. Let t be a positive integer. If the function x 1— > cx 1 is 
planar on F2™ for some c G F 2 n and infinitely many n, then t is a power 
of 2. 

Our main result, Theorem [H is a partial answer to this conjecture. This 
result will be proved in the remainder of this paper. The method is outlined 
below. 
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Let / : — > be of the form f{x) = cx l for some c E ¥\ n and let 
e E F^n. Then the condition that ([2]) is a permutation is equivalent to the 
condition that the polynomial 

c(U + ef + c(V + e)* + dJ l + cV l + e(U + V) 

has no zeros (u, v) over F2™ satisfying u ^ v. Substituting U = eX and 
V = eY, we see that this condition is in turn equivalent to the condition 
that the polynomial 

(13) {X + lf + (Y + lY + X 1 + Y l + a(X + Y) 

has no zeros (u,v) over F2™ satisfying ti/u, where a = e 2 ~ t /c. The poly- 
nomial (|13p is divisible by X + Y. We are therefore interested in the zeros 
of the polynomial 

hA , p , YV ^ (x + i) f + (y + i) t + ^ + y t + «(x + y) 
(i4j i< tia (A,yj = — - — 

(which however could still have zeros on the line X + Y). We consider the 
affme plane curve defined by F tA (and follow the usual convention to denote 
the curve and a defining polynomial by the same symbol). Then, defining a 
subset of F2™ by 

(15) A n = {e 2 -7c : e E F*„}, 

the function x 1— > cx l is planar on ¥2^ if and only if the curve Ft a has 
rational points (u, v) over ¥2^ satisfying m/w for some a E A n . 

The number of rational points on a curve can be estimated using Weil's 
Theorem, which we quote in the following form (see [5j Theorem 5.4.1], for 
example) . 

Weil's Theorem. Let F E ¥ q [X, Y] be an absolutely irreducible polynomial 
of degree d and let N be the number of rational points over ¥ q on the affine 
plane curve F. Then 

\N - q- 1| < (d - l)(d - 2)y/q + d. 

A consequence of Weil's Theorem is the following. 

Proposition 11. If Ft a has an absolutely irreducible factor over ¥2^ for 
some a 7^ 1 in A n and n is sufficiently large, then the mapping x 1— > cx l is 
not planar for all c E ¥^n . 

Proof. Let a E A n satisfy a / 1 and suppose that F^ a has an absolutely 
irreducible factor over F2«. By the above discussion, it is sufficient to show 
that, if n is sufficiently large, then the curve F^ a has rational points (u, v) 
over F2« satisfying u ^ v. Since the degree of F t<a is at most t — 2, by Weil's 
Theorem the number of rational points over ¥2^ on the curve Ft a is at least 

2 n -(t-3)(t-4)2"/ 2 -t + 3. 

By taking partial derivatives of the numerator of Ft a , we see that Ft a is 
never divisible by X + Y since a / 1. Hence, if (u,u) is on the curve F t . a , 
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then u is a root of a nonzero polynomial of bounded degree. Therefore, 
if n is sufficiently large, the curve Ft t a has rational points (u, v) over F2™ 
satisfying u ^ v. □ 

In view of Proposition [Til Conjecture [10] is proved by showing that, when 
t is not a power of 2, Ft >a has an absolutely irreducible factor over ¥2" for 
some a G -4 n satisfying a / 1 and all sufficiently large n. 

The following corollary to Lucas's Theorem will be useful. 

Lemma 12. The binomial coefficient (™) is even if and only if at least one 
of the base-2 digits of k is greater than the corresponding digit of m. 

Instead of looking at Ft a directly, we consider its homogenised version 
Ht^ a (X, Y, Z). If t is not a power of two, we find from Lemma [T2l that 

(16) H tja (X,Y,Z) = _ J ___ , 

where j is the largest power of 2 that divides t. Of course, Ft a has an 
absolutely irreducible factor if and only if H t , a has an absolutely irreducible 
factor. Our strategy is to consider the projective plane curve defined by H t , a 
over the algebraic closure F of F2 and derive a contradiction to Bezout's 
Theorem (see [61 § 5.3], for example) under the assumption that H tA has no 
absolutely irreducible factor over F2™. 

Bezout's Theorem. Let A and B be two projective plane curves over an 
algebraically closed field K, having no component in common. Then 

Y,Ip{A,B) = (deg^XdegS), 
p 

where the sum runs over all points in the projective plane P 2 (1C). 

Notice that Ip(A, B) is the intersection number of A and B at P, whose 
precise definition is neither recalled nor required in this paper. We shall 
rather use some properties of the intersection number, which allows us to 
compute it in certain cases of interest. In Section [H we shall obtain general 
upper bounds on the intersection number Ip(A, B), where Ft^ a = AB is an 
arbitrary factorisation of F^ a and P is a point in the plane P 2 (F). The 
desired contradiction to Bezout's Theorem is then derived in Section [5] 

4. Computation of intersection numbers 

4.1. Some results on intersection numbers. Let F be an affine plane 
curve (which we always assume to be defined over an algebraically closed 
field), let P = (u,v) be a point in the plane, and write 

F(X + u,Y + v) = F (X,Y) + F 1 (X,Y) + F 2 (X,Y) + -- - , 

where Fi is either zero or homogeneous of degree i. The multiplicity of F 
at P, written as mp(F), is the smallest integer m such that F m 7^ and 
Fi = for i < m; the polynomial is F m is the tangent cone of F at P. A 
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divisor of the tangent cone is called a tangent of F at P. The point P is 
on the curve F if and only if mp(F) > 1. If P is on F, then P is a simple 
point of F if mp{F) = 1, otherwise P is a singular point of F. 

Now let F* (X, Y, Z) be the homogenised polynomial of F(X, Y) and write 
P* = (u,v, 1) (in homogeneous coordinates). Then the multiplicity of the 
projective plane curve F* at P*, also written as mp*(F*), is by defini- 
tion mp(F). Likewise the intersection number Ip*(A*,B*) is by definition 
Ip(A, B), where A* and B* are the homogenised polynomials of A and B, re- 
spectively (see [6l Ch. 5] for details). We may therefore restrict our analysis 
to affine plane curves. 

One important property of the intersection number is that Ip(A,B) = 
if P is not a singular point of AB. This is a special case of the following 
more general property. 

Lemma 13 (jBJ Ch. 3, Property (5)]). Let A and B be two affine plane 
curves and suppose that the tangent cones of A and B do not share a common 
factor. Let P be a point in the plane. Then Lp{A,B) = mp{A)mp{B) . 

It is an easy exercise to obtain the following result as a corollary of 
Lemma [T3l (see Janwa, McGuire, and Wilson |13|. Proposition 2]). 

Corollary 14. Let F be an affine plane curve and suppose that F = AB. 
Let P = (u, v) be a point in the plane and write 

F(X + u,Y + v) = F m (X,Y) + F m+1 (X,Y) + -- - , 

where F{ is zero or homogeneous of degree i and F m ^ 0. Let L be a linear 
polynomial and suppose that F m = L m and L \ F m+ i. Then Lp(A,B) = 0. 

We shall require one further result to compute intersection numbers, for 
which we need the concept of a local ring (see [U §2.4] for details). 

Let F be an irreducible affine plane curve over an algebraically closed 
field K. Let L(F) be the ideal generated by F. Then K[X,Y]/I(F) is 
the coordinate ring of F; its quotient field consists of all rational functions 
defined on the points of F. Given a point P of F, the local ring Op(F) is 
defined be the subring of this quotient field that consists of those rational 
functions whose denominators do not vanish on P. We record that g G 
P (F) is a unit if and only if g(P) / 0. 

If P is a simple point on F, then Op{F) is a discrete valuation ring 
and every line through P that is not tangent to F at P can be taken as a 
uniformising parameter (HJ Ch. 3, Thm. 1]. This means that there exists an 
irreducible element e in Op(F) (the uniformising parameter) such that every 
element z 6 Op(F) can be written uniquely in the form z = ce n , where c is 
a unit in Op{F) and n is a nonnegative integer; n is the order of z, written 
as ordp(z). As usual, for B G K[X, Y], we write ordp(-B) instead of ordp(fr), 
where b is the image of B in K[X, Y]/L(F). The crucial property we require 
is the following. 
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Lemma 15 ([6, Ch. 3, Properties (8) and (6)]). Let A and B be two affine 
plane curves, let P be a simple point on A, and let A be the irreducible 
component of A that contains P. Then 

I P (A,B) =ordj(B). 

We shall apply Lemma [TCI to prove the following result. Recall that F is 
the algebraic closure of F2. 

Lemma 16. Let F be an affine plane curve over ¥ and suppose that F = 
AB. Let P = (u,v) be a point on F and write 

F(X + u,Y + v) = F m (X,Y) + F m+1 (X, ¥) + ■■■ , 

where Fi is zero or homogeneous of degree i and F m 7^ 0. Let L be a linear 
polynomial and suppose that F m = L m and L \\ F m+ i. Then Lp(A,B) = 
or m. 

Proof. Write 

A(X + u ,Y + v) = A r (X, Y) + A r+1 (X, Y) -\ 

and 

B(X + u ,Y + v) = B S (X, Y) + B S+1 (X, Y) -\ , 

where Ai and Bi are zero or homogeneous of degree i and A r and B s are 
nonzero. Since F m = L m , we have, up to constant factors, A r = LP and 
B s = L m ~ J for some j € {0, . . . , m}. Also, 

(17) F m+ \ = i4 r B s+ i + A r+ iB s , 

and since L \\ F m+ i, we find that gcd(A r , B s ) = 1 or L. If gcd(^4 r ,-B s ) = 1, 
then either mp(A) = or mp(B) = and Lp(A, B) = by Lemma [T3l 

Now suppose that gcd(A r , B s ) = L, which implies that m > 2. Without 
loss of generality, we may assume that A r = L and B s = L m_1 , so that r = 1 
and s = m — 1. Hence P is a simple point of A. Let A be the irreducible 
component of A that contains P. We shall show that 

ordp(.B) = m, 

which together with Lemma LT5l proves that Lp{A,B) = m. 

By making an affine change of coordinates, we may assume that P = 
(0,0) and L = Y, so that A x = Y and B m _i = F™" 1 . Then X is a line 
through P not tangent to A; we take this line as a uniformising parameter for 
Op{A). We adopt the following notation from [61 Sec. 3.2]: for a polynomial 
G e ¥[X, Y], we shall denote its image in ¥[X,Y]/L(A) by g. We have 
A = Y + higher order terms and thus we can write A = YG — X 2 H, where 
G = 1 + higher order terms and H £ ¥[X]. Hence in ¥[X, Y]/L{A) we have 
yg = x 2 h and so in Op (A) we have y = x 2 hg~ 1 since g(P) 7^ 0. Since 
-B m _i = Y" 1 ^ 1 , this implies that 

(18) 6 m _! = (x 2 hg- 1 ) m -\ 
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For i > 0, write 

m+i 

(19) B m+l (X, Y) = J2 «ii X m+i ^y? 

j=0 

so that 



m+i 



(20) w^E^-^^v 

3=0 



X Ci , 



where 



m+i 

7-1 V 



Ci = ^ aij(xhg~ 
j=o 

Since L || F m +i, we find from (JTTj) that L f £? m , so y { -B m . Thus aoo 7^ 
by (HU. From flS} and ([20]), 

(21) 6 = 6 m _! + b m + b m+l + --- = x m (x^ihg- 1 )™- 1 + co + xcx + ■ ■ • ) . 

For m > 2, the expression in the bracket is a unit in Op (j4) since at P = 
(0, 0) it evaluates to 

c (P) = a 00 / 0. 

Hence ordp(-B) = m for m > 2. 

Now let m = 2. Then, since <?(0, 0) = 1, the expression in the bracket of 
the right hand side on ([2Tj) evaluates to 

h(Q) + co(0,0) = h(0) + a 00 . 

Now suppose, for a contradiction, that ordp(-B) / 2. Then /i(0) + aoo = 0, 
from which we see that H(0) = —aoo- Then, since A = YG — X 2 H, we have 

A 2 (X, Y) = a 00 X 2 + (3XY + 7 Y 2 

for some /3,j G F. Furthermore, from f 1 1 9 [) . 

# 2 (x, y) = a 00 x 2 + aoixy + a 02 y 2 . 

Then, since A\ = B\ = Y, 

F 3 = A 2 B 1 + A X B 2 = Y(A 2 + B 2 ) = Y 2 (((3 + a i)X + ( 7 + a 02 )Y). 

This however contradicts our assumption Y || F$. □ 

4.2. Singular points at infinity of Bi a . We now study the intersection 
numbers Ip(A, B), where Ht^ a = AB is some factorisation and P is a singular 
point at infinity of H t>a , namely a point of the form (u, v,0). Since H t . a is 
symmetric in X and Y, we can assume that v = 1. It is then sufficient to 
consider the dehomogenisation 

Gt,a(X,Z) = Ht, a (X,l,Z), 

so that 

r (Y 7 , (X + ZY + (Z + 1Y + X* + a(X + l)Z t - 1 + 1 
Gt,a(X,Z) - Z(X + 1) ■ 
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The result of this section is the following. 

Lemma 17. Let t be a number of the form 2 k £+l for integers k > 1 and odd 
£ > 3. Let P = (u, 0) be a singular point of G t , a and suppose that G ti a = AB 
is a factorisation over ¥. Then Lp(A, B) < 4 fc ~ 1 . 

Proof. Write Gt, a for the numerator of Gj ja , namely 

(22) G t , a (X, Z) = Z(X + l)G t>a (X, Z). 

Next we compute the multiplicities of Gt, a and G^ a at P. Write 
G t>a (X + u,Z) = G {X, Z) + Gt(X, Z) + G 2 (X, Z) + ■ ■ ■ 

and 

G t>a (X + u,Z) = G (X, Z) + G X (X, Z) + G 2 (X, Z) + ■ ■ ■ , 

where Gj and Gj are either zero or homogeneous of degree i. From (|22[) we 
find that 

(23) Gi(X, Z) = XZG t - 2 (X, Z) + Z(u + l)G t ^(X, Z), 

where, by convention, G_i = G_2 = 0. We have 
t / ,\ 

+ a(X + u + l)Z t - 1 + l. 

Since P is a singular point of Gt >a , and so is a singular point of Gt, a , we 
have Go = G± = 0. From Lemma [12] we see that Gj = for each i 6 
{2, . . . , 2 k — 1}. Furthermore, since £ > 3, 

(24) G 2k (X,Z) = (n*~ 2fc + l)Z 2k 
and 

G 2k+1 (X, Z) = u^-'dX + Zf +1 + X 2k+1 ) + Z 2k+1 . 

We now see that the multiplicity of Gt jCl at P = (1,0) is 2 k + 1, while 
the multiplicity of Gj ja at P = (u, 0) for « / 1 can be either 2 k or 2 fc + 
1. Using (I23p . it is then straightforward to work out the corresponding 
multiplicities of G^ a . The results are summarised in Table HI 

Table 4. Multiplicities of Gj ja and Gj ja at their singular points. 



Type 


Point P 


m P (G t>a ) 


mp{G t ,a) 


A 


(1,0) 


2 k + 1 


2 k - 1 


B 


M), u^l 


2 fc + 1 


2 fc 


C 


(«,0),«^1 


2 fe 


2 fe - 1 



We shall need the following observation, which will be proved at the end 
of this section. 



G tia (X+u,Z) 



((x+zy+x')+zi 
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Claim 18. G 2 k + i splits into 2 k + 1 distinct factors over its splitting field. 

We resume the proof of Lemma [T7] and distinguish three cases for P, 
according to Table HI 

• P is a point of type A. In this case, the multiplicity of Gt, a at P is 2 k — 1 
and from (|23p we have 

G 2 k +l (X, Z) = XZG 2 k^i(X, Z). 

Therefore, by ClaimdU G 2 k_i, the tangent cone of Gt, a at P, has no mul- 
tiple factors over its splitting field. Lemma [T3l then implies Ip(A,B) = 
mp(A)mp(B). 

• P is a point of type B. In this case, the multiplicity of Gt >a at P is 2 k 
and from (|23p we have 

G 2k+1 (X,Z) = Z(u + l)G 2 k(X, Z). 

Thus by Claim [181 G 2 k , the tangent cone of Gt t a at P, has no multi- 
ple factors over its splitting field and so Lemma 1131 gives Ip(A,B) = 
mp(A)mp(B). 

• P is a point of type C. Now the multiplicity of Gt a at P is 2 k — 1. 
From (|23|) we find that 

G 2 k (X, Z) = Z(u + 1)^2^! {X, Z) 

G 2k+1 (X, Z) = XZG 2k _ 1 (X, Z) + Z(u + l)G 2 k (X, Z). 

From (p¥|) we see that the tangent cone of Gt, a at P equals 

u t-2 k +1 k _ 

G 2 k_ x (X,Z) = —^-^—Z 

and then, by Claim [M Z \ G 2 u. Thus I P (A, B) = by Corollary H 

Now from the three cases above we conclude that Ip(A,B) equals either 
zero or mp{A)mp{B). But since 

mp(A) + m P {B) = m P {G t , a ) < 2 k , 

we find that Ip(A,B) < (2 k ~ 1 ) 2 , as required. □ 

It remains to prove the claim invoked in the proof of Lemma [T7l 

Proof of Claim Q3 We show that 

(25) gcd(G 2 k +1 ,dG 2 k +1 /dX) G ¥[Z] 

and 

(26) gcd(G 2 k +1 ,dG 2 k +1 /dZ) e ¥[X). 
The assertion (|25p follows since 

dG 2k+1 /dX = (u^zf. 
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To prove (|26j) . first observe that P = (0,0) is not a singular point of Gt, a 
since then G\{X,Z) = Z, and so it is not a singular point of G^ a . Hence 
we may assume that We have 

dG 2k+1 /8Z = (u e - l x + (t/" 1 + i)zf. 

Hence dG 2 k + i/dZ has only one factor, namely 

(27) X + U -^Z. 

We readily verify that 

Hence, since u ^ 0, (j2"T|) divides G 2 fe +1 only if u = 1. However, for u = 1, ([2?]) 
equals X, which proves ([260 . □ 

4.3. Affine singular points of i^ a . We are now interested in the intersec- 
tion numbers ip(^4, -B), where i?f )a = and P is an affine singular point of 
H t a , namely P is of the form (u, v, 1). We work with the dehomogenisation 

F t>a (X,Y) = H t>a (X,Y,l), 

as given in (fT4ll . Let Ft ia (X, Y) be the numerator of F t: a(X,Y), so that 

F t)0 (x, y) = (x + 1)* + (y + if + x t + Y t + a (x + y). 

Our analysis crucially relies on restricting a to values in a subset of A n , 
which we define next. 

Definition 19. Let B n be the set of all a G A n such that all singular points 
(u, v) of i^ j0 satisfy each of 

(n+l)^ 2 V^ 2fc 
( M+ l)*-2 fc -l^ n *-2 fc -l 

(t, + l)*- 2fc -l^t,*-2*-l. 

Lemma 20. The set B n contains an element not equal to 1 for all sufficiently 
large n. 

Proof. Let V be the set of points (u, v) G F x F that satisfy at least one of 





,*-2* + n *-2 fe 


= 




- 1 + n*- 2fc - 1 


= 


(v + i)*- 2fc 




= 0. 



Since t — 2 fc is constant, we find by a degree argument that V has finite 
size. Then, by Definition [191 a £ «4n belongs to £> n if no point in P is 
a singular point of F t>a . By looking at the homogeneous part of degree 1 
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of Ft t a(X + u,Y + v), we see that a necessary condition for (u,v) to be a 
singular point of F tA is 

(28) (it+ 1)* _1 = a. 

But from the definition (1151) of A n we have 



2 n - 1 2 n - 1 

1 n| ~ gcd(2"-l,t-2) " 7^2~' 

and so, for all sufficiently large n, we can choose an a ^ 1 in «4 n such 
that ([28]) is not satisfied for each (u,v) G "P. This a G „4 ra belongs to £> n 
since none of the points in V is a singular point of F% a . □ 

We now state the main result of this section. 

Lemma 21. Let t be a number of the form 2 k l + 1 for integers k > 1 and 
odd £ > 1 and Ze£ a £ B n . Suppose that F^ a = «s a factorisation over ¥ 
and let P be a singular point of Ft >a . 

(i) IfP = (u,u), then m P {F t<a ) = 2 k -I and I P (A,B) = 0. 

(ii) If P = (u,v) with u^v, then m P {F tya ) = 2 k and I P (A,B) = 2 k . 

Proof. We shall first compute the multiplicities of Ft a and Ft a at P = (u, v). 
Write 

Ft, a (X + u,Y + v)= F (X, Y) + F^X, Y) + F 2 {X, Y) + ■ ■ ■ 

and 

F t:a (X + u,Y + v) =F (X,Y) + F 1 (X,Y) + F 2 (X,Y) + -- - , 
where Fi and Fi are either zero or homogeneous of degree i. We have 

(29) F t , a {X + u,Y + v) = a{X + Y + u + v) 

+ C) ( t( n + + ut ~ j ] xi + i( v + + yt ~ j ] Yj ) ■ 

i=o 

Since P is a singular point of Ft a , and so is a singular point of i*t a , we have 
i^o = -Fi = 0. From Lemma[T2]we see that F^ = for each i G {2, . . . , 2 fc — 1}. 
Furthermore, 

(30) F 2 ,(X,Y) = ((„+ l)*- 2fc +^- 2fc )X 2fc + (( v + l)^ k +v ^ k )Y 2k . 
Since a G B n , we see from Definition [19] that F 2 k is never zero and so 

(31) m P (F tA ) = 2 k . 
To compute the multiplicity of F^ a at P, we use 

(32) Fi(X,Y) = (X + Y)Fi^{X,Y) + (u + v)F t (X,Y), 

where, by convention, F-i = 0. We now prove the two cases of the lemma 
separately, using the following claim proved at the end of this section. 
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Claim 22. F 2k+l splits into 2 k + 1 distinct factors over its splitting field. 

• P = (u,u). In this case, we have mp(F t , a ) = 2 fc — 1 by ([3T]) and ([32]) . 
Furthermore, from (|32p . 

F 2 k(X,Y) = (X + Y)F 2 „_ 1 (X,Y) 
F 2k+1 (X,Y) = (X + Y)F 2k (X,Y), 
and then from (f3"Uj) . 

^(X, Y) = ((« + l)*- 2 " + n*- 2fc )(X + Y) 2k ~\ 

By Claim [22] F 2 k +1 has no multiple factors over its splitting field, and 
so X + Y does not divide F 2k . Thus I P (A, B) = by Corollary QH 

• P = (u,v) with u/d. In this case, we have rnp(Ft >a ) = 2 k by (|3ip 
and (|32p . From (|32p we have 

F 2 fe = (it + 1>).F 2 /t 

F 2fc+1 = (X + F)F 2fc + (u + u)F 2 * +1 . 

Since F 2k+l has no multiple factors by Claim [221 we conclude that F 2k 
and i*2*+i share at most one factor. Furthermore, from (|30p . we see that 

F 2k (X, Y) = (aiX + a 2 Y) 2k for some a 1 ,a 2 e F. 

If aiX + does not divide i^fc+i) then Ip(A, B) = by Corollary [HI 
so assume that F 2k and i^fc+i share the factor a\X + a 2 Y . This factor 
must divide F 2k+1 exactly and thus Ip(A,B) = or 2 k by Lemma [TBI 
This completes the proof. □ 

We now prove the claim invoked in the proof of Lemma I2T1 

Proof of Claim\M From QS2J) we find that F 2k+1 (X,Y) equals 

((„ + + u t-#-l )X 2»+l + ((u + 1)t -2*-l + ^-2*-l )y 2^ 

Since a £ B n , we readily verify with Definition 1191 that 

S cd(F 2k+1 ,dF 2k+1 /dX) = g cd(F 2k+1 ,dF 2k+1 /dY) = 1. 
This proves the claim. □ 

5. Proof of Theorem [1] 

Let t > 1 be an odd integer. Recall that, in view of Proposition llll we 
wish to show that Ft >a , given in ([H]) (or equivalently Ht >a , given in ([T6]) ) has 
an absolutely irreducible factor over F 2 ™ for some a 7^ 1 in „4„ and for all 
sufficiently large n. 

The case that t = 2 k + 1 is particularly easy to handle. 



20 



KAI-UWE SCHMIDT AND YUE ZHOU 



Proposition 23. Let t be a number of the form 2 k + 1 for integral k > 1. 
Then Ft, a has an absolutely irreducible factor for some a ^ 1 in A n and for 
all sufficiently large n. 

Proof. Notice that Ft a simplifies to 

F t , a (X,Y) = (X + Yf- 1 + a + l. 

We claim that, for all sufficiently large n, we can choose a ^ f in A n such 
that 

a + 1 = b 2k -\ 

for some b E F^n- This will prove the proposition since then X + Y + b 
divides F tA - By the definition (fT5|) of A n , the claim is equivalent to the 
existence of e, b E F^n, such that, for all c E Frjn , 

(33) e i-2 fc /c+1 = 6 2*-i 5 

which in turn is equivalent to 

(34) e 2 *- 1 + x 2k - 1 = l/c, 

where x = e&. It is well known [181 Example 6.38] that the number of 
solutions (e, x) G F2™ x F2™ to the equation ([341 is at least 

2 n _ ( 2 fc _ 2 ^ 2 fc _ 3 ^n/2 _ 2 fc + 2 _ 

Since there are at most 2 k — 1 solutions of the form (0, x) and at most 2 k — 1 
solutions of the form (e, 0), we find that, for all sufficiently large n, there 
exist e,x £ F|„ satisfying ([34"]) . Hence, for all sufficiently large n, there exist 
e, b G F^n satisfying ([33]) . as required. □ 

Henceforth, we assume that i = 2 fc ^ + 1 for inte gers k > 1 and odd £ > 3. 
We shall factor i?t ja into putative factors j4 and -B over some extension of 
F2™ and derive a contradiction to Bezout's theorem, using our estimates for 
Ip(A,B). Since Ip(A,B) = if P is a simple point of the sum in 
Bezout's Theorem can be taken over the singular points of AB. The main 
results of Section[3]can be restated as follows ((i) follows from Lemma [T71 and 
the remarks preceding it and (ii) and (iii) follow from Lemmas [20] and I2T]) . 

Corollary 24. Let t be a number of the form 2 k £ + 1 for integers k > 1 and 
odd I > 3. Let P be a singular point of Ht )C1 and suppose that Ht )a = AB is a 
factorisation of Ht t a overF. Then, for some a 7^ 1 in A n and all sufficiently 
large n, the following holds: 

(i) IfP = ( u , v ,0), then Ip(A,B) < 4 fc_1 . 

(ii) IfP = (u, u, I), then m P {H t ^ a ) = 2 k -I and L P (A, B) = 0. 

(Hi) If P = (u,v, 1) and u / v, then m P (H tA ) = 2 k and Ip(A, B) < 2 k . 

It remains to count the number of singular points of Ht A . To do so, we 
consider the numerator of Ht^ a , namely 

H tta (X,Y,Z) = {X + Zf + {Y + Zf + X 1 + Y l + a{X + Y)Z t - 1 . 



PLANAR FUNCTIONS OVER FIELDS OF CHARACTERISTIC TWO 



21 



Recall that a point P on a projective plane curve defined by H(X, Y, Z) is 
a singular point of H if and only if the partial derivatives of H with respect 
to X, Y, and Z vanish at P. Since t is odd, we have 

dH t:a /dX = {X + Z) 1 " 1 + X 1 ' 1 + aZ 1 - 1 

dH t JdY = (Y + Zf- 1 + Y^ 1 + aZ l - x 

dH tta /dz = {x + zy- 1 + (y + zy- 1 . 

Recalling that t = 2 k £ + 1 and I > 3, it is then readily verified that the 
possible singular points of H t , a are of one of the following types: 

• Points at infinity: (u, 1,0) satisfying i/ = 1, 

• A ffine points: (u,v,l) satisfying 

■ {u + l y = u z + a *- k 

(35) I ( v + 1 y = v e + a 2- k 

Au+iy = {v + if. 

Lemma 25. Let t be a number of the form 2 k t + 1 for integers k > 1 and 
odd £ > 3. Then, for each nonzero a £ F, i/ie curve Ht >a has at most £ 
singular points at infinity and at most (£ — 1)(£ — 2)/2 affine singular points 
(n, v, 1) satisfying u ^ v. 

Proof. First observe that each singular point of Ht^ a is also a singular point 
of ii^a- It is readily verified that Ht )a has at most £ singular points at 
infinity, thus Ht^ has at most £ such singular points. 

We now show that Ht,a has at most {£ — 1)(£ — 1) /2 affine singular points 
(n, v, 1) satisfying u ^ v. Let a G F be nonzero. Since £ > 3 is odd, the 
first two conditions of (|35l) are not trivially satisfied. Thus we find from a 
degree argument that there are exactly (£ — 1)(£ — 2) pairs (u, v) with m/d 
that satisfy the first two conditions of (135p . Notice that, if (it,f) is such a 
pair, then (u + l,v) also satisfies the first two conditions of (|35l) . Now let 
(n, u, 1) be a singular point of -fft, a , so that the pair (u,v) satisfies (f35j) . We 
claim that (u+ 1, u , 1) is not a singular point of Ht^ a , for if (u+ 1, v ) satisfies 
all three conditions of ()35[) . then (u + 1)^ = t/, which implies a = and 
so contradicts our assumption that a is nonzero. Hence there are at most 
{£ — 1){£ — 2)/2 affine singular points on H tA - D 

We now show that Ht A has an absolutely irreducible factor for some a / 1 
in A n and all sufficiently large n. 

Proposition 26. Let t be a number of the form 2 k £ + 1 for integers k > 1 
and odd £ > 3. TTien i?t ja has an absolutely irreducible factor over ¥2" for 
some a 7^ 1 in A n and all sufficiently large n. 

To prove the proposition, we shall need one further standard result (see 
Hernando and McGuire |1Q|. Lemma 10], for example). 
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Lemma 27. Let F E ¥ q [X\, . . . , X m ] be a polynomial of degree d, irreducible 
overF q . Then there exists a natural number s \ d such that, over its splitting 
field, F splits into s absolutely irreducible polynomials, each of degree d/s. 



a 



Proof of Proposition \26[ If Ht ia = AB is a nontrivial factorisation of Ht 
and A and B are not relatively prime, then by definition, Y2p Ip(A, B) = oo. 
However, by Lemma[25land Corollary|241 Ht )a has a finite number of singular 
points P, each having a finite intersection number Ip(A,B). Hence we 
can assume that A and B are relatively prime, which allows us to use the 
conclusion of Bezout's Theorem. 
Write 

Ht,a = Q1Q2 ■ • • Qri 

where Qi is irreducible over F2™. Let di be the degree of Qi. By Lemma [27] 
there exist natural numbers Sj such that Qi splits into Sj absolutely irre- 
ducible factors over F, each of degree di/ Si. If si = 1 for some i 6 {1, . . . , r}, 
then Ht } a has an absolutely irreducible factor over ¥2^ and we are done. 
Thus assume, for a contradiction, that Sj > 1 for each i G {1, . . . , r}. 

We arrange the factors of Qi into three polynomials, Cj, Di, and Ri, such 
that deg Cj = deg Di and such that Ri = 1 if Sj is even and deg Ri = di/ Sj 
if Sj is odd. Write C = C x • • • C r , D = D x ■ ■ ■ D r , and R = i?i • • • R r . Let 5 
be the degree of C (and of D) and let p be the degree of R. Since CDR is 
a factorisation of which has degree t — 2, we find that 

(36) 2<5 + p = t - 2, 
and, since Sj > 1, 

(37) p < 
which gives 

(degC7?)(degL>) = (<5 + p)8 = ^ + ^ ~ P - >ht-2) 2 . 



9 



Bezout's theorem then gives 

Tt>«jr. n) > 

9 



(38) ^/p(C J R, J D)>|(i-2) 5 

p 



On the other hand, we find from Lemma 1251 and Corollary [2H that, for some 
a ^ 1 in ^4, n and for all sufficiently large n, 



|fc -i , ^-l)(^-2) ofc 



I P {CR, D) < £A + ^ ^ ^2 A 

p 

This contradicts (138j) for k > 2 since £ > 1. 

We now consider the case k = 1, so that t = 2^ + 1. Choose a 7^ 1 in 
A n and take n sufficiently large so that the assertions of Corollary 1241 hold. 
Since k = 1, we find from Corollary [24~l that all affine singular points of Bf^ a 
are of the form (u,v, 1) with and the multiplicity of such a singular 

point equals 2. Hence an affine singular point of H t , a can only be a point 
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of at most two of the factors of Ht, a - Given two factors F and G of Ht,a, 
let Nfg be the number of affine singular points of Ht, a that are on both F 
and G. Then, by Corollary 1244 

(39) Ncd + N C r + N dr < (l- 1 )^- 2 ) , 
Bezout's Theorem gives 

^2l P (CD,R) = 25 p 

p 

Y,Ip(CR,D) = (5 + p)5 
p 

^I P (DR,C) = (5 + p)5. 
p 

We estimate the left hand sides using Lemma[231and Corollary 1241 and obtain 
2(N CR + N DR ) + £>25p 
2(N CD + N DR ) + £>(5 + p)5 
2(N CD + N CR ) + £>(5 + p)5. 
Summing these equations gives 

25 2 + 45p < 4(N CD + Nor + N DR ) + 3£ < 2(1 - 1)(£ - 2) + 3£, 
using (p9|) . Since t = 21 + 1, we have from ([36]) 

£ _ 25 + p+l 
2 

and therefore 

(40) 2<5(2p + 1) < p{p - 1) + 6. 
From (|36p and (137)) we conclude that 6 > p, so that 

2p(2p + 1) < p(p - 1) + 6 

or equivalently p(p + 1) < 2, forcing p < 1. But, if p = 0, then t is even 
by (|36p . a contradiction. Hence p = 1 and then from (|40p we find that 5=1, 
giving t = 5 by (|36p . But t = 5 cannot be written as 2£ + l for odd £, which 
completes the proof. □ 

Now our main result, Theorem[U follows from Propositions lllU23[ and!261 
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